KR20090091051A - On-line credit card payment system and method using a cellular phone authentication - Google Patents

On-line credit card payment system and method using a cellular phone authentication Download PDF

Info

Publication number
KR20090091051A
KR20090091051A KR1020090014028A KR20090014028A KR20090091051A KR 20090091051 A KR20090091051 A KR 20090091051A KR 1020090014028 A KR1020090014028 A KR 1020090014028A KR 20090014028 A KR20090014028 A KR 20090014028A KR 20090091051 A KR20090091051 A KR 20090091051A
Authority
KR
South Korea
Prior art keywords
authentication
information
mobile phone
credit card
sms
Prior art date
Application number
KR1020090014028A
Other languages
Korean (ko)
Inventor
배한성
Original Assignee
삼성카드 주식회사
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to KR1020080016446 priority Critical
Priority to KR20080016446 priority
Application filed by 삼성카드 주식회사 filed Critical 삼성카드 주식회사
Publication of KR20090091051A publication Critical patent/KR20090091051A/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/22Payment schemes or models
    • G06Q20/24Credit schemes, i.e. "pay after"
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/325Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks
    • G06Q20/3255Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks using mobile network messaging services for payment, e.g. SMS
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/12Messaging; Mailboxes; Announcements

Abstract

An online credit card payment apparatus using mobile phone authentication and a method thereof are disclosed. After receiving the authentication information including credit card information, mobile phone information and social security number for online credit card payment, the authentication result performed by the card company based on the credit card information of the authentication information and the mobile phone information When receiving the authentication result performed by the communication company, it receives the SMS authentication number to the mobile phone number included in the mobile phone information and then performs authentication by comparing with the received SMS authentication number.

Description

On-line credit card payment system and method using a cellular phone authentication}

The present invention relates to an online credit card payment device and a method thereof, and more particularly, to an online credit card payment device using a mobile phone authentication and a method thereof.

When paying using a credit card on a network such as a conventional Internet, a user registers authentication information such as a password through a homepage of a credit card company for online use of the credit card.

And if you want to pay in the online shopping mall, such as by entering the pre-registered authentication information on the payment screen, the payment of the credit card is completed. In the past, most credit card companies use VBV or the like for online credit card payment. However, in the reality of financial accidents on the Internet, it is necessary to introduce safer transactions.

The present invention has been made in an effort to provide a method and apparatus for ensuring the safety of an online credit card payment using mobile phone authentication.

In order to solve the above technical problem, an embodiment of an online credit card payment device according to the present invention, authentication information for receiving authentication information including credit card information for online credit card payment and mobile phone information for mobile phone authentication An input unit; An SMS authentication number input unit for receiving an SMS authentication number transmitted to a mobile phone number included in the mobile phone information; And a transaction approval unit for approving the transaction upon receiving a response that both authentication performed based on the authentication information and authentication performed based on the SMS authentication number are successful.

In order to solve the above technical problem, an embodiment of the online credit card payment method according to the present invention, the step of receiving authentication information including credit card information, mobile phone information, social security number for online credit card payment; Receiving an SMS authentication number transmitted to a mobile phone number included in the mobile phone information; Receiving whether authentication performed based on the authentication information and authentication performed based on the SMS authentication number are successful; And approving the transaction upon receiving a response that all of the authentications are successful.

In order to solve the above technical problem, another embodiment of the online credit card payment device according to the present invention, authentication information for receiving authentication information including credit card information for online credit card payment and mobile phone information for mobile phone authentication Receiving unit; A mobile phone authentication unit authenticated based on mobile phone information included in the authentication information through a mobile communication company; A card authentication unit that authenticates based on credit card information included in the authentication information through a card company; If all of the authentication is successful, SMS transmission unit for transmitting the SMS approval number to the mobile phone number included in the mobile phone information; And an SMS authentication unit that performs authentication based on whether the same information as the SMS approval number is input from the user.

In order to solve the above technical problem, another embodiment of the online credit card payment method according to the present invention, receiving the authentication information including the credit card information for the online credit card payment and mobile phone information for mobile phone authentication; A first authentication step of authenticating based on a mobile phone information and a social security number included in the authentication information through a mobile communication company; A second authentication step of authenticating based on credit card information included in the authentication information through a card company; If all authentication is successful, transmitting an SMS approval number to a mobile phone number included in the mobile phone information; And a third authentication step of performing authentication based on whether the same information as the SMS approval number is input from the user.

According to the present invention, by performing a separate authentication through a mobile phone registered in advance when using the online credit card registration to prevent financial accidents that may occur during online credit card payment.

Hereinafter, with reference to the accompanying drawings will be described in detail an online credit card payment device and method using a mobile phone authentication according to the present invention.

1 is a diagram illustrating an example of a schematic flow of an online card payment method using mobile phone authentication according to the present invention.

In the present invention, by receiving and storing the mobile phone number and the name of the person (for example, social security number) when issuing a mobile phone to the user of the mobile communication company, it has a database that can determine whether the matching of the mobile number and the social security number later. In addition, the user is a mobile phone that completed the authentication of the mobile carrier (that is, check whether the mobile phone number and social security number match) when registering for use of credit card online (for example, assured click or ISP) through the card company homepage in advance. Assume that you registered your number together. This pre-registration process can be implemented through various conventional methods, of course.

Referring to FIG. 1, when a user 100 wants to purchase an item or the like on an internet site of a service affiliate store 110 and pays with a credit card, the user 100 inputs authentication information through a payment screen of the site. This authentication information includes information such as a user's mobile phone number and social security number for mobile phone authentication in addition to the information for the payment of the conventional online credit card.

The online merchant 110 transmits the authentication information for credit card payment received from the user 100 to the mobile authentication broker 120. The mobile authentication broker 120 transmits the mobile number and the social security number to the mobile service provider 130 corresponding to the user's mobile number to check whether the two information match.

If the mobile phone number and social security number exactly match the legitimate customer, the mobile authentication broker 120 transmits the authentication information to the card company 140 to check the authentication and approval of the credit card. When the authentication for the credit card is successful, the mobile authentication broker 120 transmits an authentication number (hereinafter, SMS authentication number) to the mobile phone number included in the authentication information through a short message service (SMS).

When the user 100 inputs the SMS authentication number received through the mobile phone through the online affiliate store 110 again, the SMS authentication number is transmitted to the mobile authentication broker 120 again. The mobile authentication broker 120 performs user authentication based on whether the SMS authentication information transmitted to the user matches the SMS authentication information input from the user through the online affiliated store 110.

If the two SMS authentication information is matched, the mobile authentication broker 120 transmits a message that the transaction is normally approved at the online merchant. Thus, the online merchant 110 recognizes that the payment has been processed normally and provides the goods purchased by the user. Thereafter, the card company 140 charges and receives the card usage fee from the user according to a conventional method.

2 and 3 are diagrams illustrating a system configuration and method of an online merchant for online card payment using mobile phone authentication according to the present invention, respectively. Hereinafter, a description will be given with reference to FIGS. 2 and 3.

2, the online merchant payment system includes an authentication information input unit 200, an SMS authentication number input unit 210, and a transaction approval unit 220.

The authentication information input unit 200 provides a user with a payment screen for credit card payment, and receives authentication information through the payment screen (S300). The authentication information includes a credit card number, a password (for example, assured click password) registered in advance with a credit card company for online payment, a mobile phone number and a social security number. The authentication information described herein shows an example for the service according to the present invention, and of course, the authentication information may be changed and used as necessary to provide the service according to the present invention. In particular, there are various types of payment methods, such as a conventional VBV system for online credit card payment, so that the authentication information may be different. The card company and the mobile communication company receive the authentication information received through the authentication information input unit 200 to perform authentication and transmit the result to the online merchant.

Here, the mobile communication company may be a specific mobile communication company corresponding to the mobile phone number included in the authentication information or a company having information on all mobile phone numbers. If the mobile telecommunication company is a specific mobile telecommunication company, if it is impossible through the mobile phone number, the authentication information input unit 200 is preferably received with information about the mobile telecommunication company corresponding to the mobile phone number.

If the authentication performed based on the authentication information is successful, the user receives the authentication number (hereinafter, SMS authentication number) through the short message service to the mobile phone number included in the authentication information. The SMS authentication number may be transmitted from the mobile communication company, or may be transmitted through the mobile authentication broker as shown in FIG. 1. SMS authentication number is not necessarily made of numbers, it is a matter of course that letters or numbers and letters can be mixed.

SMS authentication number input unit 210 receives the SMS authentication number from the user and transmits the SMS authentication information (S310). In the case of Figure 1, the SMS authentication number input unit 210 transmits the received SMS authentication information to the mobile authentication broker 120.

The transaction approval unit 220 indicates that both the authentication performed based on the authentication information input through the authentication information input unit 200 and the authentication performed based on the SMS authentication number input through the SMS authentication number input unit 210 are successful. If the message is received from the outside, the transaction is approved and the user provides the goods or services requested for payment by credit card (S320).

4 is a diagram illustrating an example of a payment screen provided by an online merchant for online card payment using mobile phone authentication according to the present invention.

4 (a) is an example of a screen for selecting a payment method, and when the mobile phone authentication payment according to the present invention is selected in FIG. 4 (a), the screen of FIG. 4 (b) is provided. Figure 4 (b) is an example of a screen for receiving a mobile phone number, mobile communication company, resident number in the online merchant. In case of using the conventional VBV for online payment service, the authentication information inputted according to various systems for the conventional online payment service such as credit card number, CVC information, and Acincclick password should be input as authentication information is different, so the input screen for this is Is omitted in FIG. 4 (b).

Figure 4 (c) is an example of a screen for receiving the authorization number after receiving credit card information and mobile phone information in the online merchant, Figure 4 (d) is an example of the screen after the payment is completed.

5 and 6 are views illustrating the configuration and method of the system of the mobile authentication broker for the online card payment using the mobile phone authentication according to the present invention, respectively. Hereinafter, a description will be given with reference to FIGS. 5 and 6.

5, the system of the mobile authentication broker is authentication information receiver 500, mobile phone authentication unit 510, card authentication unit 520, SMS transmission unit 530, SMS authentication unit 540 and transaction approval Section 545.

The authentication information receiver 500 receives the authentication information for the online credit card payment through the mobile phone authentication entered by the user through an online shopping mall or the like (S600). The authentication information includes a mobile phone number, a social security number, etc. for mobile phone authentication in addition to the information for the conventional online credit card payment.

The mobile phone authentication unit 510 transmits the mobile phone number and the social security number included in the authentication information to the mobile communication company 550 corresponding to the mobile phone number to receive authentication whether the social security number associated with the mobile phone number matches (S610). The mobile carrier receives personal information such as social security number when registering the user's mobile phone in advance and stores and manages it with the mobile phone number. Therefore, the mobile authentication broker checks whether the mobile phone number and social security number matched correctly and returns the result.

The card authentication unit 520 transmits the information for online credit card payment, such as a credit card number and password included in the authentication information, to the card company 560 to receive an authorization for the authentication and payment request amount for the card (S620). . In this case, the card company 560 may determine whether the mobile phone number matches if there is a mobile phone number registered with the online credit card. Since there are various conventional methods as an approval method of the card company, detailed description thereof will be omitted here.

The SMS issuing unit 530 transmits the SMS approval number to the mobile phone number included in the authentication information when all authentications through the mobile communication company 550 and the card company 560 are successful (S630).

The SMS authentication unit 540 receives the SMS approval number through the SMS transmission unit 530, receives the SMS approval number from the user through the authentication information receiver 500, and then checks whether the SMS authentication number matches the transmitted SMS approval number ( S640). If there is a mismatch, the credit card payment request of the user is rejected, and if there is a match, the transaction approval unit 545 transmits a transaction approval message to the online merchant.

The invention can also be embodied as computer readable code on a computer readable recording medium. The computer-readable recording medium includes all kinds of recording devices in which data that can be read by a computer system is stored. Examples of computer-readable recording media include ROM, RAM, CD-ROM, magnetic tape, floppy disk, optical data storage, and the like, and also in the form of a display by a carrier wave (for example, transmission over the Internet). It includes what is implemented. The computer readable recording medium can also be distributed over network coupled computer systems so that the computer readable code is stored and executed in a distributed fashion.

So far I looked at the center of the preferred embodiment for the present invention. Those skilled in the art will appreciate that the present invention can be implemented in a modified form without departing from the essential features of the present invention. Therefore, the disclosed embodiments should be considered in descriptive sense only and not for purposes of limitation. The scope of the present invention is shown in the claims rather than the foregoing description, and all differences within the scope will be construed as being included in the present invention.

1 is a view showing an example of a schematic flow of an online card payment method using a mobile phone authentication according to the present invention,

2 and 3 are diagrams illustrating a system configuration and method of an online merchant for online card payment using mobile phone authentication according to the present invention, respectively;

4 is a diagram illustrating an example of a payment screen provided by an online merchant for online card payment using mobile phone authentication according to the present invention;

5 and 6 are views illustrating the configuration and method of the system of the mobile authentication broker for the online card payment using the mobile phone authentication according to the present invention, respectively.

Claims (21)

An authentication information input unit for receiving authentication information including credit card information for online credit card payment and mobile phone information for mobile phone authentication; An SMS authentication number input unit for receiving an SMS authentication number transmitted to a mobile phone number included in the mobile phone information; And And a transaction approval unit for approving a transaction upon receiving a response indicating that both the authentication performed based on the authentication information and the authentication performed based on the SMS authentication number are successful. The method of claim 1, wherein the transaction approval unit, And an authentication result performed by a card company based on credit card information of the authentication information and an authentication result performed by a mobile communication company based on the mobile phone information. The method of claim 1, wherein the transaction approval unit, And sending the SMS authentication number to the place where the SMS authentication number is issued to receive whether the two SMS authentication numbers match. The method of claim 1, The credit card information includes a credit card number, CVC number, password, and the mobile phone information includes a mobile phone number, social security number, mobile carrier information, characterized in that the online credit card payment device. Receiving authentication information including credit card information, mobile phone information, and social security number for online credit card payment; Receiving an SMS authentication number transmitted to a mobile phone number included in the mobile phone information; Receiving whether authentication performed based on the authentication information and authentication performed based on the SMS authentication number are successful; And And receiving a response indicating that all of the authentications are successful, and approving the transaction. The method of claim 5, wherein approving the transaction, Receiving an authentication result performed by a card company based on the credit card information of the authentication information; And Receiving an authentication result performed by a mobile communication company based on the mobile phone information. The method of claim 5, wherein approving the transaction, And sending the SMS authentication number to the place where the SMS authentication number is issued to receive whether or not the two SMS authentication numbers correspond to each other. The method of claim 5, And the credit card information includes a credit card number, a CVC number, and a password, and the mobile phone information includes a mobile phone number and a carrier information. An authentication information receiver configured to receive authentication information including credit card information for online credit card payment and mobile phone information for mobile phone authentication; A mobile phone authentication unit authenticated based on mobile phone information included in the authentication information through a mobile communication company; A card authentication unit that authenticates based on credit card information included in the authentication information through a card company; If all of the authentication is successful, SMS transmission unit for transmitting the SMS approval number to the mobile phone number included in the mobile phone information; And And an SMS authentication unit configured to perform authentication based on whether the same information as that of the SMS approval number is input from the user. The method of claim 9, The credit card information includes a credit card number, a CVC number, a password, and the mobile phone information comprises a mobile phone number, social security number, mobile carrier information, online online credit card payment device. 10. The method of claim 9, wherein the mobile phone authentication unit, Transmitting the mobile phone information including a mobile phone number and a social security number to the mobile communication company, and receiving a result from the mobile communication company on whether the social security number matches the social security number corresponding to the mobile phone information registered to the mobile communication company; An online credit card payment device, characterized in that. The method of claim 9, wherein the card authentication unit, And transmitting the credit card information to the card company, and receiving an authentication result performed by the card company based on the credit card information. The method of claim 9, And a transaction approval unit for approving a transaction if all authentications in the mobile phone authentication unit, the card authentication unit, and the SMS authentication unit are successful. The method of claim 9, wherein the authentication information receiving unit, An online credit card payment device, characterized in that for receiving authentication information input from the user through an online merchant. Receiving authentication information including credit card information for online credit card payment and mobile phone information for mobile phone authentication; A first authentication step of authenticating based on a mobile phone information and a social security number included in the authentication information through a mobile communication company; A second authentication step of authenticating based on credit card information included in the authentication information through a card company; If all authentication is successful, transmitting an SMS approval number to a mobile phone number included in the mobile phone information; And And a third authentication step of performing authentication based on whether the same information as that of the SMS approval number is input from the user. The method of claim 15, The credit card information includes a credit card number, a CVC number, a password, and the mobile phone information includes a mobile phone number, social security number, mobile carrier information. The method of claim 15, wherein the first authentication step, Transmitting the mobile phone information including a mobile phone number and a social security number to the mobile communication company; And And receiving a result from the mobile communication company whether the social security number corresponds to the social security number corresponding to the mobile phone information registered in the mobile communication company. The method of claim 15, wherein the second authentication step, Transmitting the credit card information to the card company; And Receiving an authentication result performed by the card company based on the credit card information; Online credit card payment method comprising a. The method of claim 15, And if all the authentications from the first authentication step to the third authentication step succeed, approving a transaction. The method of claim 15, wherein the receiving of the authentication information comprises: Receiving the authentication information input from the user through an online merchant; Online credit card payment method comprising a. A computer readable recording medium having recorded thereon a program for executing the method according to at least one of claims 5 to 8 or 15 to 20.
KR1020090014028A 2008-02-22 2009-02-19 On-line credit card payment system and method using a cellular phone authentication KR20090091051A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
KR1020080016446 2008-02-22
KR20080016446 2008-02-22

Publications (1)

Publication Number Publication Date
KR20090091051A true KR20090091051A (en) 2009-08-26

Family

ID=41208720

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020090014028A KR20090091051A (en) 2008-02-22 2009-02-19 On-line credit card payment system and method using a cellular phone authentication

Country Status (1)

Country Link
KR (1) KR20090091051A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101110775B1 (en) * 2010-03-09 2012-02-24 비씨카드(주) Method and server for providing service
WO2013141457A1 (en) * 2012-03-19 2013-09-26 에스케이플래닛 주식회사 System, terminal, apparatus and method for electronic payment system
WO2013187557A1 (en) * 2012-06-15 2013-12-19 에스케이플래닛 주식회사 Offline payment system, offline payment device, and offline payment method

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101110775B1 (en) * 2010-03-09 2012-02-24 비씨카드(주) Method and server for providing service
WO2013141457A1 (en) * 2012-03-19 2013-09-26 에스케이플래닛 주식회사 System, terminal, apparatus and method for electronic payment system
KR101436296B1 (en) * 2012-03-19 2014-09-02 에스케이플래닛 주식회사 Electric payment system, method thereof and apparatus thereof
WO2013187557A1 (en) * 2012-06-15 2013-12-19 에스케이플래닛 주식회사 Offline payment system, offline payment device, and offline payment method

Similar Documents

Publication Publication Date Title
US20210201301A1 (en) Mobile barcode generation and payment
US20180240115A1 (en) Methods and systems for payments assurance
US11087317B2 (en) Authentication and verification services for third party vendors using mobile devices
RU2438172C2 (en) Method and system for performing two-factor authentication in mail order and telephone order transactions
US11127009B2 (en) Methods and systems for using a mobile device to effect a secure electronic transaction
US20090063312A1 (en) Method and System for Processing Secure Wireless Payment Transactions and for Providing a Virtual Terminal for Merchant Processing of Such Transactions
KR20060022304A (en) Interactive financial settlement service method using mobile phone number or virtual number
US11216818B2 (en) Secure payment made from a mobile device through a service provider
KR101384846B1 (en) Simple payment method using mobile terminal
KR20120100283A (en) System and method for electronic payment
KR20090091051A (en) On-line credit card payment system and method using a cellular phone authentication
CA3061601C (en) Mobile barcode generation and payment
KR20010016619A (en) Settlement system using the credit-phone
KR100920175B1 (en) Small-amount settlement system using mobile and method thereof
KR20080079714A (en) A system and method of certifying cardholder using mobile phone
JP2008046717A (en) Settlement system utilizing mobile terminal
KR101640300B1 (en) Method of secure finance transaction based on finance window using mobile device and system performing the same
KR20030082018A (en) Method of a credit card approval using interactive short message service
KR20170054131A (en) On/Off-line Banking Transaction Method for Preventing illegal use of Card
AU2013201177B2 (en) Mobile barcode generation and payment
KR20110102659A (en) Billing secured payment method and system
AU2015213383A1 (en) Mobile barcode generation and payment
KR20100048851A (en) System for processing approval of payment means by using mobile communication number
KR20040072855A (en) Financial Settlement Security System and Method using Multiple Settlement Channel
KR20050080146A (en) Mobile phone payment service

Legal Events

Date Code Title Description
A201 Request for examination
E902 Notification of reason for refusal
E90F Notification of reason for final refusal
E601 Decision to refuse application